CVE-2019-8517

Summary

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. Processing a maliciously crafted font may result in the disclosure of process memory.

Affected Software

VendorProductVersion RangeStatus
AppleiOSunspecified < iOS 12.2affected
ApplemacOSunspecified < macOS Mojave 10.14.4affected
AppletvOSunspecified < tvOS 12.2affected
ApplewatchOSunspecified < watchOS 5.2affected

Weaknesses

  • Processing a maliciously crafted font may result in the disclosure of process memory

ADP Enrichment

CVE Program Container

Additional References

References